Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

SUSE: 2024:270-1 moderate: Security update for PAM package released

suse
Calendar Grey January 20, 2024
Dist Suse Esm H88
SUSE Container Update Alert for suse/registry features significant security fixes for PAM. Additional information provided below.
The container suse/registry was updated

Summary

Advisory ID: SUSE-SU-2024:136-1 Released: Thu Jan 18 09:53:47 2024 Summary: Security update for pam Type: security Severity: moderate

Topics%20covered

Topics Covered

security advisory denial of service moderate severity suse pam container update

References

References : 1217000 1218475 CVE-2024-22365

1217000,1218475,CVE-2024-22365

This update for pam fixes the following issues:

- CVE-2024-22365: Fixed a local denial of service during PAM login

due to a missing check during path manipulation (bsc#1218475).

- Check localtime_r() return value to fix crashing (bsc#1217000)

The following package changes have been done:

- pam-1.3.0-150000.6.66.1 updated

- container:micro-image-15.5.0-15.1 updated

Container Advisory ID : SUSE-CU-2024:270-1
Container Tags : suse/registry:2.8 , suse/registry:2.8-18.4 , suse/registry:latest
Container Release : 18.4
Severity : moderate
Type : security

Topics%20covered

Topics Covered

security advisory denial of service moderate severity suse pam container update

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here